SlideShare a Scribd company logo

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

ForgeRock, profile picture
ForgeRock

The document details a webinar discussing the importance of managing digital identities in the Internet of Things (IoT) for both industrial and consumer applications, emphasizing the integration of identity and access management (IAM) capabilities to enhance security and customer experience. Key themes include the necessity of organizational change due to digital transformation, the interconnected nature of systems, and the challenges faced in managing identities across diverse digital environments. The session is led by experts from KuppingerCole and ForgeRock, addressing complex access scenarios and the future of IAM in a connected world.

Technology
1 of 23
Downloaded 29 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Digital Identities in the Internet of Things Securely Manage Devices at Scale DATE: Tuesday, September 25, 2018 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT www.kuppingercole.com Martin Kuppinger CEO, Founder & Principal Analyst KuppingerCole mk@kuppingercole.com This webinar is supported by Gerhard Zehethofer VP Manufacturing ForgeRock
• Founded in 2004 • International independent analyst organization • Offers neutral advice, expertise, thought leadership, and practical relevance • Supports companies, corporate users, integrators, and software manufacturers with tactical and strategic challenges • Specialized in: • Information Security • Identity & Access Management (IAM) • Governance (IAG) • Risk Management & Compliance (GRC) • All areas concerning the Digital Transformation About KuppingerCole 2© KuppingerCole
3 Our Business Areas • Research on all major & current topics tailored to your needs • Vendor-Neutral • Always current • Independent Advice • Conferences, Webinars & Special Events • Innovative Leadership • Future proof approach • Great Networking Opportunities • Meet the Experts • Best in class and trusted Advisory Partner • Together we make Your Business more successful • Most current advise in the Era of Digital Transformation Research Events Advisory © KuppingerCole
Upcoming KuppingerCole Events 4 More information at www.kuppingercole.com© KuppingerCole
5 You are muted centrally. You don‘t have to mute/unmute yourself – we control the mute/unmute features The Questions and Answers Session will be at the end. You can enter questions anytime, using the Questions feature in the GoToWebinar Control Panel. We will record the Webinar – the podcast recording will be available tomorrow. © KuppingerCole Some Guidelines for the Webinar
© KuppingerCole 6 Talks about the “why” and the “how” of Identities for IoT, both Industrial IoT and Consumer IoT How ForgeRock is extending IAM capabilities into the areas of managed and unmanaged devices, enhancing the customer experience as well as security and privacy at scale for people, services, and things Part 1 Martin Kuppinger KuppingerCole Part 2 Gerhard Zehethofer ForgeRock Questions and Answers (Q & A)Part 3 Agenda
1. The Digital Transformation affects every organization 2. The Digital Transformation is here to stay 3. Digital Transformation is more than just IoT 4. Digital Transformation mandates Organizational Change 5. Everything & Everyone becomes connected 6. Security & Safety: not a dichotomy 7. Security is a risk – and an opportunity 8. Identity is the glue – who or what may get access to what? Eight Fundamentals for the Digital Transformation © KuppingerCole 8
Smart watches Connected vehicles Smart homes Smart grids eBooks Digital music Online retail Online payment Manufacturing Fundamental #1 The Digital Transformation affects every organization © KuppingerCole 9
Fundamental #3.1 Digital Transformation is already reality in many industries – without any connected things Fundamental #3.2 Industry 4.0 (or „smart manufacturing“) is about connecting manufacturing environments and this „Operational Technology“ (OT) – quite big things here Fundamental #3.3 Connecting things for the sake of connectivity does not create business – it is the change in business models and the services that make the business Fundamental #3.4 Most (not all) business providing things will earn more with services than with the things Fundamental #3 Digital Transformation is more than just IoT © KuppingerCole 10
© KuppingerCole 11 Fundamental #5 Everything & Everyone becomes connected The new ABC: Agile Business - Connected
© KuppingerCole The quintessence of Industry 4.0: Connecting everything = everything is under attack Business Process Established Attack Vectors Manufacturing Process Established, but yet rare Attack Vectors Connecting Processes (Industry 4.0) 12
© KuppingerCole 13 Fundamental #6 Security & Safety: Not a dichotomy Operational Technology Security •Safety (of humans and equipment) •Reliability •Availability (of technology) Information Technology Security •Confidentiality •Integrity •Availability (of information) People use devices access services control manufacturing Brave new world of smart manufacturing In most scenarios, there will be bi-directional communication A system an attacker can connect to is at risk We have to merge OT and IT security (and „things“ security) It‘s not about safety vs. security, it is about safety and security Rethink OT: Time for SDOT – software-defined OT
Fundamental #1: More than humans - It’s also about Identities of things, devices, services, and apps Fundamental #2: Multiple Identity Providers - We will not manage all identities internally anymore and trust will vary Fundamental #3: Multiple Attribute Providers - There will no longer be a single source of truth and information on identities anymore Fundamental #4: Multiple Identities - Many users will use different identities (or personas) and flexibly switch between these Fundamental #5: Multiple Authenticators - There is no single authenticator that works for all Fundamental #6: Identity Relationships - We must map humans to things, devices, and apps Fundamental #7: Context - Identity and Access Risk varies in context Fundamental #8 Identity is the glue – access control is what you need © KuppingerCole 14 Seven Fundamentals for Future Identity and Access Management
Safety •Ensure that neither faults nor failure nor attacks cause damage – revert to fail-safe mode and continue working Security •Ensure that no one can attack the connected thing(s) or set of things Privacy •Ensure compliance with regulations and avoid leakage of PII Identity •Manage all identities of organizations, people, device, and things, and their access to systems, components, and data © KuppingerCole 15 Four of the many challenges of security for IoT
© KuppingerCole 16 It‘s not only one big thing – IoT can be complex … … … … … … … Sensors Controllers Systems Entities Identities • Not all components are directly addressable, i.e. sensors • Controllers might work unidirectional or bidirectional • There is system-system and system- peripheral system communication • Various entities might access systems that read or write to controllers • Multiple entities might access these systems
Systems Event data recorder Motor engine controller SCADA device … DataUsage data Event data Individual configuration data State data … Organizations Manufacturer Distributor Insurance company Government … Individuals Employees of organizations Workers Auditors Production worker… Events Standard use Violation of defined limits Accident Technical failure … © KuppingerCole 17 Understand the complexity of access Who is allowed to access which data under which event?
Who is allowed to access which data under which event? Multiple IAM systems, e.g. employees, customers, partners, suppliers, governmental organizations, insurance companies,… Data exchange to various types of partners such as manufacturer/reseller, manufacturer/insurance companies, manufacturer/governmental organizations,… Data is distributed across multiple controllers and systems Systems in general are best suited for IAM for the IoT There is a need for more than one IAM, because systems are massively segregated (consumer vs. technical control) Security and privacy for data that is shared/exchanged between multiple parties is hard to enforce © KuppingerCole 18 The IAM challenge of IIoT in complex environments
© KuppingerCole 19 Talks about the “why” and the “how” of Identities for IoT, both Industrial IoT and Consumer IoT How ForgeRock is extending IAM capabilities into the areas of managed and unmanaged devices, enhancing the customer experience as well as security and privacy at scale for people, services, and things Part 1 Martin Kuppinger KuppingerCole Part 2 Gerhard Zehethofer ForgeRock Questions and Answers (Q & A)Part 3 Agenda
Upcoming KuppingerCole Events 20 More information at www.kuppingercole.com© KuppingerCole
KuppingerCole GDPR Readiness Assessment 21 © KuppingerCole
22 KuppingerCole Core Advisory Areas •A clear understanding of the scope and maturity of defined processes, the implemented systems and the organization. Benchmarking and Optimization •A well thought-out strategy provides clear answers to future questions and thus helps to significantly shorten decision-making processes. Strategy Support •A concise and consistent vision in the development of IT architectures and the selection of technologies, vendors and products. Architecture and Technology Support •Support in the evaluation and management of implementation projects over time. (One-time or scheduled). Project Guidance KuppingerCole Advisory Services Benchmarking and Optimization Strategy Support Architecture and Technology Support Project Guidance © KuppingerCole
Related Research © KuppingerCole 23 No. Type Title L. 40296 Executive View ForgeRock Identity Platform 71316 Executive View ForgeRock Access Management 70282 Advisory Note Identity in IoT 70999 Advisory Note Connected Enterprise Step-by-step 70998 Advisory Note The new ABC for IT: Agile Businesses, Connected 73000 Whitepaper ForgeRock: The Effect of GDPR on Customer Relations
KuppingerCole Analysts AG Headquarters Wilhelmstr. 20-22 65185 Wiesbaden | Germany Tel +49 (211) 23 70 77 – 0 Fax +49 (211) 23 70 77 – 11 www.kuppingercole.com The Future of Information Security – Today. info@kuppingercole.com KC2016/10/05 © KuppingerCole

More Related Content

PDF
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
 
PDF
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
ForgeRock
 
PPT
ForgeRock Open Identity Stack Summit - Kick-off by Mike Ellis
ForgeRock
 
PPTX
Identity Live Sydney 2017 - Daniel Raskin
ForgeRock
 
PDF
Implications of GDPR in Conjunction with UMA
ForgeRock
 
PDF
GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...
ForgeRock
 
PDF
Intelligent Authentication (Identity Live Berlin 2018)
ForgeRock
 
PPTX
Identity Live London 2017 | Kenneth May
ForgeRock
 
ForgeRock and Trusona - Simplifying the Multi-factor User Experience
ForgeRock
 
Silo Busters- The Value of User and Data Centricity beyond IoT Devices (Ident...
ForgeRock
 
ForgeRock Open Identity Stack Summit - Kick-off by Mike Ellis
ForgeRock
 
Identity Live Sydney 2017 - Daniel Raskin
ForgeRock
 
Implications of GDPR in Conjunction with UMA
ForgeRock
 
GDPR is coming in Hot. Top Burning Questions Answered to Help You Keep Your C...
ForgeRock
 
Intelligent Authentication (Identity Live Berlin 2018)
ForgeRock
 
Identity Live London 2017 | Kenneth May
ForgeRock
 

What's hot (20)

PDF
Identity Live Sydney: Building Trust and Privacy in a Connected Society
ForgeRock
 
PPTX
2015 Identity Summit - CTO Innovation Center
ForgeRock
 
PDF
Shift from GDPR readiness to sustained compliance to improve your business an...
ForgeRock
 
PDF
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
PPTX
Identity Live Sydney 2017 - Tim Sheedy
ForgeRock
 
PPTX
Identity Live Paris 2017 | Ian Sorbello, HSBC
ForgeRock
 
PPTX
Gartner - ForgeRock Identity Live 2017 - Dusseldorf
ForgeRock
 
PPTX
Securing Access to SaaS Apps with WSO2 Identity Server
WSO2
 
PDF
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
ForgeRock
 
PPTX
2015 Identity Summit - Stepping Up to New Data Protection Challenges
ForgeRock
 
PDF
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
ForgeRock
 
PPTX
Identity Live Sydney 2017 - Ian Sorbello
ForgeRock
 
PPTX
HSBC - ForgeRock Identity Summit 2017 Dusseldorf
ForgeRock
 
PDF
Identity Live Singapore: Transform Your Cybersecurity Capability
ForgeRock
 
PPTX
McKesson Case Study: Pharmacy Systems & Automation
ForgeRock
 
PPTX
9.35am robert humphrey
Argyle Executive Forum
 
PPTX
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
PDF
Winning with GDPR: How to Win Customer Loyalty and Trust
ForgeRock
 
PDF
Go Beyond PSD2 Compliance with Digital Identity
ForgeRock
 
PDF
T-Systems. Automating ForgeRock Full Stack Deployments to a Magenta Cloud.
ForgeRock
 
Identity Live Sydney: Building Trust and Privacy in a Connected Society
ForgeRock
 
2015 Identity Summit - CTO Innovation Center
ForgeRock
 
Shift from GDPR readiness to sustained compliance to improve your business an...
ForgeRock
 
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
Identity Live Sydney 2017 - Tim Sheedy
ForgeRock
 
Identity Live Paris 2017 | Ian Sorbello, HSBC
ForgeRock
 
Gartner - ForgeRock Identity Live 2017 - Dusseldorf
ForgeRock
 
Securing Access to SaaS Apps with WSO2 Identity Server
WSO2
 
The ForgeRock Identity Platform Extends CIAM, Fall 2017 Release
ForgeRock
 
2015 Identity Summit - Stepping Up to New Data Protection Challenges
ForgeRock
 
Steinberg - Customer identity as the cornerstone of our approach to digitaliz...
ForgeRock
 
Identity Live Sydney 2017 - Ian Sorbello
ForgeRock
 
HSBC - ForgeRock Identity Summit 2017 Dusseldorf
ForgeRock
 
Identity Live Singapore: Transform Your Cybersecurity Capability
ForgeRock
 
McKesson Case Study: Pharmacy Systems & Automation
ForgeRock
 
9.35am robert humphrey
Argyle Executive Forum
 
Identity Gateway with the ForgeRock Identity Platform - So What’s New?
ForgeRock
 
Winning with GDPR: How to Win Customer Loyalty and Trust
ForgeRock
 
Go Beyond PSD2 Compliance with Digital Identity
ForgeRock
 
T-Systems. Automating ForgeRock Full Stack Deployments to a Magenta Cloud.
ForgeRock
 
Ad

Similar to Digital Identities in the Internet of Things - Securely Manage Devices at Scale (20)

PDF
No IoT Without Identity
ForgeRock
 
PPTX
Ben goodman cybersecurity in the iiot
MassTLC
 
PDF
The Convergence of IT, Operational Technology and the Internet of Things (IoT)
Jackson Shaw
 
PDF
The Value of User and Data Centricity Beyond IoT Devices: Stein Myrseth and G...
ForgeRock
 
PDF
The Internet of Things: the 4 security dimensions of smart devices
Wavestone
 
PDF
Trends in IRM: Internet of Things
ForgeRock
 
PDF
Fernando Meco, Director de Marketing de SAS.
MSMK - Madrid School of Marketing
 
PPTX
Victor Ake and Chris Kawalek - ForgeRock Identity Live 2017 - Dusseldorf
ForgeRock
 
PDF
RISE OF THE MACHINES: IRM IN AN IOT WORLD
ForgeRock
 
PDF
Intel and the Internet of Things
Daren Dunkel
 
PDF
How Secure are you Around “IoT”_.pdf
Anil
 
PDF
The Future of Digital Identity in the Age of the Internet of Things
ForgeRock
 
PPTX
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock
 
PPTX
How the Emerging IoT will Prompt Asset Management Issues - IAITAM Spring ACE ...
John Boruvka
 
PPTX
ForgeRock CTO TECHNOLOGY PREVIEW
ForgeRock
 
PDF
A History of IIoT Cyber-Attacks & Checklist for Implementing Security [Infogr...
GlobalSign
 
PDF
Cybersecurity in the Age of IoT - Skillmine
Skillmine Technology Consulting
 
PPTX
Ravi i ot-security
skumartarget
 
PPTX
Identity Live Paris 2017 | Mike Ellis
ForgeRock
 
PDF
IoT identity management: a comprehensive guide to creating secure IoT device ...
Neil Johnson
 
No IoT Without Identity
ForgeRock
 
Ben goodman cybersecurity in the iiot
MassTLC
 
The Convergence of IT, Operational Technology and the Internet of Things (IoT)
Jackson Shaw
 
The Value of User and Data Centricity Beyond IoT Devices: Stein Myrseth and G...
ForgeRock
 
The Internet of Things: the 4 security dimensions of smart devices
Wavestone
 
Trends in IRM: Internet of Things
ForgeRock
 
Fernando Meco, Director de Marketing de SAS.
MSMK - Madrid School of Marketing
 
Victor Ake and Chris Kawalek - ForgeRock Identity Live 2017 - Dusseldorf
ForgeRock
 
RISE OF THE MACHINES: IRM IN AN IOT WORLD
ForgeRock
 
Intel and the Internet of Things
Daren Dunkel
 
How Secure are you Around “IoT”_.pdf
Anil
 
The Future of Digital Identity in the Age of the Internet of Things
ForgeRock
 
ForgeRock Gartner 2016 Security & Risk Management Summit
ForgeRock
 
How the Emerging IoT will Prompt Asset Management Issues - IAITAM Spring ACE ...
John Boruvka
 
ForgeRock CTO TECHNOLOGY PREVIEW
ForgeRock
 
A History of IIoT Cyber-Attacks & Checklist for Implementing Security [Infogr...
GlobalSign
 
Cybersecurity in the Age of IoT - Skillmine
Skillmine Technology Consulting
 
Ravi i ot-security
skumartarget
 
Identity Live Paris 2017 | Mike Ellis
ForgeRock
 
IoT identity management: a comprehensive guide to creating secure IoT device ...
Neil Johnson
 
Ad

More from ForgeRock (19)

PPTX
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
ForgeRock
 
PDF
Identity Live Sydney: Identity Management - A Strategic Opportunity
ForgeRock
 
PDF
Identity Live Singapore 2018 Keynote Presentation
ForgeRock
 
PDF
Identity Live Sydney 2018 Keynote Presentation
ForgeRock
 
PDF
Identity Live Singapore: Just Ask 'Em
ForgeRock
 
PDF
Identity Live Singapore: Building Trust & Privacy in a Connected Society
ForgeRock
 
PDF
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
ForgeRock
 
PPTX
Get the Exact Identity Solution You Need - In the Cloud - Overview
ForgeRock
 
PDF
Opening Keynote (Identity Live Berlin 2018)
ForgeRock
 
PDF
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
ForgeRock
 
PDF
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
ForgeRock
 
PDF
Customer Safeguarding, Fraud and GDPR: Manah Khalil
ForgeRock
 
PDF
Applying Innovative Tools for GDPR Success
ForgeRock
 
PDF
What the Internet of Things Means for Consumer Privacy: Veronica Lara
ForgeRock
 
PDF
Identity Live in Austin Keynote
ForgeRock
 
PDF
Where Biometrics, Blockchains, and Bots are Taking Digital Identity: David Birch
ForgeRock
 
PPTX
The Road to Intelligent Authentication Journeys
ForgeRock
 
PPT
Identity Live Paris 2017 | Jean-François Dupitier & Christophe Lemaire, Pôle ...
ForgeRock
 
PPTX
Identity Live Paris 2017 | Monetising Digital Customer Relationships
ForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - AWS and Beyond
ForgeRock
 
Identity Live Sydney: Identity Management - A Strategic Opportunity
ForgeRock
 
Identity Live Singapore 2018 Keynote Presentation
ForgeRock
 
Identity Live Sydney 2018 Keynote Presentation
ForgeRock
 
Identity Live Singapore: Just Ask 'Em
ForgeRock
 
Identity Live Singapore: Building Trust & Privacy in a Connected Society
ForgeRock
 
Get the Exact Identity Solution you Need in the Cloud - Deep Dive
ForgeRock
 
Get the Exact Identity Solution You Need - In the Cloud - Overview
ForgeRock
 
Opening Keynote (Identity Live Berlin 2018)
ForgeRock
 
BMW Group - Identity Enables the Next 100 Years.. (Identity Live Berlin 2018)
ForgeRock
 
Trust is Everything - The Future of Identity and the ForgeRock Platform (Iden...
ForgeRock
 
Customer Safeguarding, Fraud and GDPR: Manah Khalil
ForgeRock
 
Applying Innovative Tools for GDPR Success
ForgeRock
 
What the Internet of Things Means for Consumer Privacy: Veronica Lara
ForgeRock
 
Identity Live in Austin Keynote
ForgeRock
 
Where Biometrics, Blockchains, and Bots are Taking Digital Identity: David Birch
ForgeRock
 
The Road to Intelligent Authentication Journeys
ForgeRock
 
Identity Live Paris 2017 | Jean-François Dupitier & Christophe Lemaire, Pôle ...
ForgeRock
 
Identity Live Paris 2017 | Monetising Digital Customer Relationships
ForgeRock
 

Recently uploaded (20)

PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Teaching material agriculture food technology
LiaRayya
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Approach and Philosophy of On baking technology
30anthuong17
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Modernizing your data center with Dell and AMD
Principled Technologies
 

Digital Identities in the Internet of Things - Securely Manage Devices at Scale

  • 1. Digital Identities in the Internet of Things Securely Manage Devices at Scale DATE: Tuesday, September 25, 2018 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT www.kuppingercole.com Martin Kuppinger CEO, Founder & Principal Analyst KuppingerCole mk@kuppingercole.com This webinar is supported by Gerhard Zehethofer VP Manufacturing ForgeRock
  • 2. • Founded in 2004 • International independent analyst organization • Offers neutral advice, expertise, thought leadership, and practical relevance • Supports companies, corporate users, integrators, and software manufacturers with tactical and strategic challenges • Specialized in: • Information Security • Identity & Access Management (IAM) • Governance (IAG) • Risk Management & Compliance (GRC) • All areas concerning the Digital Transformation About KuppingerCole 2© KuppingerCole
  • 3. 3 Our Business Areas • Research on all major & current topics tailored to your needs • Vendor-Neutral • Always current • Independent Advice • Conferences, Webinars & Special Events • Innovative Leadership • Future proof approach • Great Networking Opportunities • Meet the Experts • Best in class and trusted Advisory Partner • Together we make Your Business more successful • Most current advise in the Era of Digital Transformation Research Events Advisory © KuppingerCole
  • 4. Upcoming KuppingerCole Events 4 More information at www.kuppingercole.com© KuppingerCole
  • 5. 5 You are muted centrally. You don‘t have to mute/unmute yourself – we control the mute/unmute features The Questions and Answers Session will be at the end. You can enter questions anytime, using the Questions feature in the GoToWebinar Control Panel. We will record the Webinar – the podcast recording will be available tomorrow. © KuppingerCole Some Guidelines for the Webinar
  • 6. © KuppingerCole 6 Talks about the “why” and the “how” of Identities for IoT, both Industrial IoT and Consumer IoT How ForgeRock is extending IAM capabilities into the areas of managed and unmanaged devices, enhancing the customer experience as well as security and privacy at scale for people, services, and things Part 1 Martin Kuppinger KuppingerCole Part 2 Gerhard Zehethofer ForgeRock Questions and Answers (Q & A)Part 3 Agenda
  • 7. 1. The Digital Transformation affects every organization 2. The Digital Transformation is here to stay 3. Digital Transformation is more than just IoT 4. Digital Transformation mandates Organizational Change 5. Everything & Everyone becomes connected 6. Security & Safety: not a dichotomy 7. Security is a risk – and an opportunity 8. Identity is the glue – who or what may get access to what? Eight Fundamentals for the Digital Transformation © KuppingerCole 8
  • 8. Smart watches Connected vehicles Smart homes Smart grids eBooks Digital music Online retail Online payment Manufacturing Fundamental #1 The Digital Transformation affects every organization © KuppingerCole 9
  • 9. Fundamental #3.1 Digital Transformation is already reality in many industries – without any connected things Fundamental #3.2 Industry 4.0 (or „smart manufacturing“) is about connecting manufacturing environments and this „Operational Technology“ (OT) – quite big things here Fundamental #3.3 Connecting things for the sake of connectivity does not create business – it is the change in business models and the services that make the business Fundamental #3.4 Most (not all) business providing things will earn more with services than with the things Fundamental #3 Digital Transformation is more than just IoT © KuppingerCole 10
  • 10. © KuppingerCole 11 Fundamental #5 Everything & Everyone becomes connected The new ABC: Agile Business - Connected
  • 11. © KuppingerCole The quintessence of Industry 4.0: Connecting everything = everything is under attack Business Process Established Attack Vectors Manufacturing Process Established, but yet rare Attack Vectors Connecting Processes (Industry 4.0) 12
  • 12. © KuppingerCole 13 Fundamental #6 Security & Safety: Not a dichotomy Operational Technology Security •Safety (of humans and equipment) •Reliability •Availability (of technology) Information Technology Security •Confidentiality •Integrity •Availability (of information) People use devices access services control manufacturing Brave new world of smart manufacturing In most scenarios, there will be bi-directional communication A system an attacker can connect to is at risk We have to merge OT and IT security (and „things“ security) It‘s not about safety vs. security, it is about safety and security Rethink OT: Time for SDOT – software-defined OT
  • 13. Fundamental #1: More than humans - It’s also about Identities of things, devices, services, and apps Fundamental #2: Multiple Identity Providers - We will not manage all identities internally anymore and trust will vary Fundamental #3: Multiple Attribute Providers - There will no longer be a single source of truth and information on identities anymore Fundamental #4: Multiple Identities - Many users will use different identities (or personas) and flexibly switch between these Fundamental #5: Multiple Authenticators - There is no single authenticator that works for all Fundamental #6: Identity Relationships - We must map humans to things, devices, and apps Fundamental #7: Context - Identity and Access Risk varies in context Fundamental #8 Identity is the glue – access control is what you need © KuppingerCole 14 Seven Fundamentals for Future Identity and Access Management
  • 14. Safety •Ensure that neither faults nor failure nor attacks cause damage – revert to fail-safe mode and continue working Security •Ensure that no one can attack the connected thing(s) or set of things Privacy •Ensure compliance with regulations and avoid leakage of PII Identity •Manage all identities of organizations, people, device, and things, and their access to systems, components, and data © KuppingerCole 15 Four of the many challenges of security for IoT
  • 15. © KuppingerCole 16 It‘s not only one big thing – IoT can be complex … … … … … … … Sensors Controllers Systems Entities Identities • Not all components are directly addressable, i.e. sensors • Controllers might work unidirectional or bidirectional • There is system-system and system- peripheral system communication • Various entities might access systems that read or write to controllers • Multiple entities might access these systems
  • 16. Systems Event data recorder Motor engine controller SCADA device … DataUsage data Event data Individual configuration data State data … Organizations Manufacturer Distributor Insurance company Government … Individuals Employees of organizations Workers Auditors Production worker… Events Standard use Violation of defined limits Accident Technical failure … © KuppingerCole 17 Understand the complexity of access Who is allowed to access which data under which event?
  • 17. Who is allowed to access which data under which event? Multiple IAM systems, e.g. employees, customers, partners, suppliers, governmental organizations, insurance companies,… Data exchange to various types of partners such as manufacturer/reseller, manufacturer/insurance companies, manufacturer/governmental organizations,… Data is distributed across multiple controllers and systems Systems in general are best suited for IAM for the IoT There is a need for more than one IAM, because systems are massively segregated (consumer vs. technical control) Security and privacy for data that is shared/exchanged between multiple parties is hard to enforce © KuppingerCole 18 The IAM challenge of IIoT in complex environments
  • 18. © KuppingerCole 19 Talks about the “why” and the “how” of Identities for IoT, both Industrial IoT and Consumer IoT How ForgeRock is extending IAM capabilities into the areas of managed and unmanaged devices, enhancing the customer experience as well as security and privacy at scale for people, services, and things Part 1 Martin Kuppinger KuppingerCole Part 2 Gerhard Zehethofer ForgeRock Questions and Answers (Q & A)Part 3 Agenda
  • 19. Upcoming KuppingerCole Events 20 More information at www.kuppingercole.com© KuppingerCole
  • 20. KuppingerCole GDPR Readiness Assessment 21 © KuppingerCole
  • 21. 22 KuppingerCole Core Advisory Areas •A clear understanding of the scope and maturity of defined processes, the implemented systems and the organization. Benchmarking and Optimization •A well thought-out strategy provides clear answers to future questions and thus helps to significantly shorten decision-making processes. Strategy Support •A concise and consistent vision in the development of IT architectures and the selection of technologies, vendors and products. Architecture and Technology Support •Support in the evaluation and management of implementation projects over time. (One-time or scheduled). Project Guidance KuppingerCole Advisory Services Benchmarking and Optimization Strategy Support Architecture and Technology Support Project Guidance © KuppingerCole
  • 22. Related Research © KuppingerCole 23 No. Type Title L. 40296 Executive View ForgeRock Identity Platform 71316 Executive View ForgeRock Access Management 70282 Advisory Note Identity in IoT 70999 Advisory Note Connected Enterprise Step-by-step 70998 Advisory Note The new ABC for IT: Agile Businesses, Connected 73000 Whitepaper ForgeRock: The Effect of GDPR on Customer Relations
  • 23. KuppingerCole Analysts AG Headquarters Wilhelmstr. 20-22 65185 Wiesbaden | Germany Tel +49 (211) 23 70 77 – 0 Fax +49 (211) 23 70 77 – 11 www.kuppingercole.com The Future of Information Security – Today. info@kuppingercole.com KC2016/10/05 © KuppingerCole